CVE-2018-13311

Publication date

2018-11-26 22:00:00

Family

mitre

State

PUBLISHED

Description

System command injection in formDlna in TOTOLINK A3002RU version 1.0.8 allows attackers to execute system commands via the "sambaUser" POST parameter.